Issuer is a type that can issue certificates.
| 314 | |
| 315 | // Issuer is a type that can issue certificates. |
| 316 | type Issuer interface { |
| 317 | // Issue obtains a certificate for the given CSR. It |
| 318 | // must honor context cancellation if it is long-running. |
| 319 | // It can also use the context to find out if the current |
| 320 | // call is part of a retry, via AttemptsCtxKey. |
| 321 | Issue(ctx context.Context, request *x509.CertificateRequest) (*IssuedCertificate, error) |
| 322 | |
| 323 | // IssuerKey must return a string that uniquely identifies |
| 324 | // this particular configuration of the Issuer such that |
| 325 | // any certificates obtained by this Issuer will be treated |
| 326 | // as identical if they have the same SANs. |
| 327 | // |
| 328 | // Certificates obtained from Issuers with the same IssuerKey |
| 329 | // will overwrite others with the same SANs. For example, an |
| 330 | // Issuer might be able to obtain certificates from different |
| 331 | // CAs, say A and B. It is likely that the CAs have different |
| 332 | // use cases and purposes (e.g. testing and production), so |
| 333 | // their respective certificates should not overwrite eaach |
| 334 | // other. |
| 335 | IssuerKey() string |
| 336 | } |
| 337 | |
| 338 | // Revoker can revoke certificates. Reason codes are defined |
| 339 | // by RFC 5280 §5.3.1: https://tools.ietf.org/html/rfc5280#section-5.3.1 |
no outgoing calls
no test coverage detected
searching dependent graphs…